security/pkcs11-tools: Properly set BROKEN on 11.x with OpenSSL 1.0.x

Another case of wishful thinking. In reality the framework does not support a BROKEN_SSL_11 at the moment. Reported by: portscan
2021-04-21 12:10:36 +02:00 · 2021-04-21 12:10:36 +02:00 · 6fbfa31c0a
commit 6fbfa31c0a
parent b54974bf33
1 changed files with 6 additions and 2 deletions
--- a/security/pkcs11-tools/Makefile
+++ b/security/pkcs11-tools/Makefile
@ -8,8 +8,6 @@ COMMENT=	Tools for managing PKCS11 cryptographic tokens

 LICENSE=	APACHE20

-BROKEN_SSL_11=			base
-BROKEN_SSL_11_REASON_base=	OpenSSL version is too old, lacks symbols: error: use of undeclared identifier 'EVP_PKEY_X25519', etc.
 BROKEN_SSL=			libressl
 BROKEN_SSL_REASON_libressl=	error: use of undeclared identifier 'EVP_PKEY_X25519' (LibreSSL has no support for Edwards curves)

@ -35,6 +33,12 @@ LDFLAGS+=	${OPENSSLBASE}/lib/libcrypto.a # -lcrypto # fails to find symbol in th

 INSTALL_TARGET=	install-strip

+.include <bsd.port.options.mk>
+
+.if ${SSL_DEFAULT} == base && ${OPSYS} == FreeBSD && ${OSVERSION} < 1200085
+BROKEN=	OpenSSL version is too old, lacks symbols: error: use of undeclared identifier 'EVP_PKEY_X25519', etc.
+.endif
+
 post-extract:
 	@${RMDIR} ${WRKSRC}/.gnulib ${WRKSRC}/include/oasis-pkcs11
 	@${MV} ${WRKSRC_gnulib} ${WRKSRC}/.gnulib